US11741232B2 - Secure in-service firmware update - Google Patents

Secure in-service firmware update Download PDF

Info

Publication number
US11741232B2
US11741232B2 US17/163,599 US202117163599A US11741232B2 US 11741232 B2 US11741232 B2 US 11741232B2 US 202117163599 A US202117163599 A US 202117163599A US 11741232 B2 US11741232 B2 US 11741232B2
Authority
US
United States
Prior art keywords
firmware
pss
given version
computer system
privilege
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active, expires
Application number
US17/163,599
Other versions
US20220245251A1 (en
Inventor
Mor Hoyda Sfadia
Yuval Itkin
Ahmad Atamli
Ariel Shahar
Yaniv Strassberg
Itsik LEVI
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Mellanox Technologies Ltd
Original Assignee
Mellanox Technologies Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Mellanox Technologies Ltd filed Critical Mellanox Technologies Ltd
Priority to US17/163,599 priority Critical patent/US11741232B2/en
Assigned to MELLANOX TECHNOLOGIES, LTD. reassignment MELLANOX TECHNOLOGIES, LTD. ASSIGNMENT OF ASSIGNORS INTEREST (SEE DOCUMENT FOR DETAILS). Assignors: ATAMLI, Ahmad, STRASSBERG, YANIV, ITKIN, YUVAL, LEVI, ITSIK, SFADIA, Mor Hoyda, SHAHAR, ARIEL
Priority to EP21836642.5A priority patent/EP4285259A1/en
Priority to CN202180091298.XA priority patent/CN116745765A/en
Priority to PCT/IB2021/061995 priority patent/WO2022162457A1/en
Publication of US20220245251A1 publication Critical patent/US20220245251A1/en
Priority to US18/349,147 priority patent/US20230351021A1/en
Application granted granted Critical
Publication of US11741232B2 publication Critical patent/US11741232B2/en
Active legal-status Critical Current
Adjusted expiration legal-status Critical

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/50Monitoring users, programs or devices to maintain the integrity of platforms, e.g. of processors, firmware or operating systems
    • G06F21/57Certifying or maintaining trusted computer platforms, e.g. secure boots or power-downs, version controls, system software checks, secure updates or assessing vulnerabilities
    • G06F21/572Secure firmware programming, e.g. of basic input output system [BIOS]
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F8/00Arrangements for software engineering
    • G06F8/60Software deployment
    • G06F8/65Updates
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F9/00Arrangements for program control, e.g. control units
    • G06F9/06Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
    • G06F9/44Arrangements for executing specific programs
    • G06F9/445Program loading or initiating
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/03Indexing scheme relating to G06F21/50, monitoring users, programs or devices to maintain the integrity of platforms
    • G06F2221/033Test or assess software

Definitions

  • the present invention relates generally to secure update of computer systems, and particularly to methods and systems for secure in-service firmware update in computer systems.
  • Computer systems that run service programs such as network elements, data-center servers, mobile-telephony base-stations, payment systems, database query systems and others, are typically required to provide continuous service.
  • U.S. Pat. No. 10,838,711 describes a method and apparatuses for altering the configuration of a system including a processor, firmware storage and a scratchpad from a first configuration in which a first version of firmware enabling a first plurality of system operations is run by the processor, into a second configuration in which a second version of firmware enabling a second plurality of system operations is run by the processor, including re-configuring the system from the first configuration into an intermediate configuration, while the system is in the intermediate configuration, disallowing at least one of the first plurality of operations, re-configuring the system, from the intermediate configuration to the second configuration, and while the system is in the second configuration, allowing the second plurality of operations.
  • U.S. Patent Application Publication 2016/0266894 proposes an approach that contemplates systems and methods to support performing a live update or upgrade of a firmware of an embedded networking device to a successful completion without resetting the embedded networking device.
  • a new version of the firmware is installed seamlessly on the embedded networking device to replace the current version of the firmware on one or more cores at a time.
  • various software applications running on other cores of the embedded networking device continue to perform packet processing operations without any interruption.
  • An embodiment of the present invention that is described herein provides a computer system including a volatile memory and at least one processor.
  • the volatile memory includes a protected storage segment (PSS) configured to store firmware-authentication program code for authenticating firmware of the computer system.
  • PSS protected storage segment
  • the at least one processor is configured to receive a trigger to switch to a given version of the firmware, and, in response to the trigger, to obtain a privilege to access the PSS.
  • the at least one processor is further configured to authenticate the given version of the firmware by executing the firmware-authentication program code from the PSS, to switch to the given version of the firmware upon successfully authenticating the given version, and to take an alternative action upon failing to authenticate the given version.
  • the computer system further includes a read-only-memory (ROM), which is configured to store one or both of (i) part of the firmware-authentication program code and (ii) data used by the firmware-authentication program code, wherein, in response to the trigger, the at least one processor is configured to obtain a privilege to access both the PSS and the ROM.
  • ROM read-only-memory
  • the at least one processor is configured to obtain the privilege, authenticate the given version and switch to the given version, without a reset.
  • the at least one processor in response to a reset, is configured to boot an initial version of the firmware, to authenticate the initial version of the firmware, and to load the firmware-authentication program code to the PSS.
  • the computer system further includes a privilege control circuit that is configured to grant the privilege to access the PSS to the at least one processor, in response to detecting that the at least one processor accesses a defined address.
  • the computer system further includes input interfaces, and the at least one processor is configured to ignore inputs from the input interfaces while having the privilege to access the PSS.
  • the volatile memory and the at least one processor are included in a network device.
  • the network device may include one of a network adapter, a network switch, a network router and a network-enabled Graphics Process in Unit (GPU).
  • GPU Graphics Process in Unit
  • a method including storing firmware-authentication program code, for authenticating firmware of a computer system, in a protected storage segment (PSS) of a volatile memory.
  • a trigger to switch to a given version of the firmware is received.
  • a privilege to access the PSS is obtained, and the given version of the firmware is authenticated by executing the firmware-authentication program code from the PSS.
  • a switch is made to the given version of the firmware upon successfully authenticating the given version, and an alternative action is taken upon failing to authenticate the given version.
  • a method for securely switching firmware versions in a computer system includes storing, in a protected storage portion of a volatile memory, software program code which authenticates firmware of the computer system.
  • a trigger to switch to a given version of the firmware is received.
  • a privilege to access the protected storage portion is obtained,
  • the given version of the firmware is authenticated by executing the software program code stored in the protected storage portion,
  • a switch is made to the given version of the firmware, and
  • iv) if the given version is not authenticated successfully, an alternative action is taken.
  • FIG. 1 is a block diagram that schematically illustrates a computer system, in accordance with an embodiment of the present invention
  • FIG. 2 is a flowchart that schematically illustrates a method for a computer system boot that enables secure in-service firmware update, in accordance with an embodiment of the present invention.
  • FIG. 3 a flowchart that schematically illustrates a method for in-service firmware switch, in accordance with an embodiment of the present invention.
  • activating a new firmware version in a computer system entails rebooting, including activation of authentication software to make sure that the new firmware version is trustworthy.
  • Numerous methods have been devised to verify the reliability of the firmware and protect it against attacks. Example techniques can be found, for example, in “Security Requirements for Cryptographic Modules, implementation Guidelines,” NIST-FIPS 140-2, initially released on Mar. 28, 2003.
  • a key element of the methods is typically the rebooting of the computer system.
  • firmware update should be done with minimum (or no) disruption to the service, and rebooting is highly undesirable.
  • in-service firmware update Updating of the firmware with minimum or no disruption to the service will be referred to as “in-service firmware update.”
  • the updating of the firmware may comprise two parts—installing the new firmware in the computer system, and the activation of the new firmware.
  • the critical part is typically the latter—the new firmware may be loaded in the background and typically poses no security risk until activated.
  • Embodiments of the present invention that are disclosed herein provide methods and systems wherein new firmware may be activated with both minimal disruption and full security verification.
  • the computer system comprises a Protected Storage Segment (PSS); a processor of the computer system loads the PSS, during boot, with trusted firmware authentication code, and locks the PSS against all accesses until released (typically for execute-only) when an external trigger event indicates that the computer system should switch the running firmware to a new version (that has been pre-loaded to the computer system memory).
  • PSS Protected Storage Segment
  • the external trigger causes a processor of the computer system to access a preset location in memory (referred to hereinbelow as “singular address”);
  • the computer system comprises a privilege logic circuit, which is configured to detect accessing of the singular address by the processor, and, responsively, to immediately modify access restrictions set by the privilege logic, including allowing the processor to execute: the code stored in the PSS and to read an attestation security key from a non-volatile memory of the computer system.
  • one of the processors of the computer system will securely authenticate the new firmware, by running the code in the PSS and by reading an attestation key, without a need to reboot the computer system. If the authentication passes, the new firmware will take over. More details be disclosed in the description of example embodiments hereinbelow.
  • FIG. 1 is a block diagram that schematically illustrates a computer system 100 , in accordance with an embodiment of the present invention.
  • system 100 comprises, or is embedded in, a network device.
  • the network device may comprise, for example, a network adapter such as an Ethernet Network Interface Controller (NIC) or an InfinibandTM Host Channel Adapter (HCA), a network switch or router, a network-enabled Graphics Processing Unit (CPU), or any other suitable type of device capable of network communication.
  • NIC Network Interface Controller
  • HCA InfinibandTM Host Channel Adapter
  • CPU network-enabled Graphics Processing Unit
  • system 100 may comprise any other suitable type of computer system.
  • computer system 100 comprises Reduced Instruction Set (RISC) processors 102 , a Memory subsystem 104 , a Control Registers Space (CRS) circuit 106 , an Access-Control circuit 108 and a Privilege-Logic circuit 110 .
  • RISC Processors 102 comprise twelve RISC processors; in alternative embodiments, however, any suitable number of RISC processors may be used, including a single RISC processor.
  • processors may be used, such as one or more Graphic Processor Units (GPUs), one or more Complex instruction set Computers (CISCs), and any combination of processors.
  • GPUs Graphic Processor Units
  • CISCs Complex instruction set Computers
  • Memory Subsystem 104 comprises one or more memories of one or more memory types; the memories may include volatile memories (e.g., Static or Dynamic Random-Access Memories (SRAMs or DRAMs)), Read-Only memories (ROMs), one-time programmable memories (e.g., e-fuse memories), Electrically Erasable Read-Only Memories (EEPROM), flash memories and/or magnetic memories, for example. Some or all the memories may be shared by a plurality of processors, whereas other memories may be dedicated to specific processors of RISC Processors 102 .
  • volatile memories e.g., Static or Dynamic Random-Access Memories (SRAMs or DRAMs)
  • ROMs Read-Only memories
  • EEPROM Electrically Erasable Read-Only Memories
  • flash memories for example.
  • Some or all the memories may be shared by a plurality of processors, whereas other memories may be dedicated to specific processors of RISC Processors 102 .
  • CRS 106 comprises configuration registers operable to set system parameters of computer system 100 , and to store data generated within the computer system (e.g., by RISC processors 102 ).
  • CRS 106 is coupled to RISC processors 102 (in some embodiments CRS 106 is coupled to the RISC processors via a system, or a local bus), and, through Access Control circuit 108 , to external interfaces with Input-Output devices such as I2C, JTAG and others.
  • Access Control circuit 108 is set by a Privilege Logic circuit 110 to enable or disable accesses between the external interface and one of the CRS, the RISC processors, and the memory subsystem.
  • Privilege Logic circuit 110 is configured to control access rights between elements of computer system 100 , including granting or denying specified RISC processors access rights to individual memory elements (and to individual segments within the memory elements) and to individual CRS registers. Privilege Logic circuit 110 is further configured to allow or disallow access of specified external interfaces by specified RISC processors, and access of CSR registers and memory (or memory segments) by the external interfaces (in some embodiments, more elaborate access rights may be used, e.g., separate rights to write, read or execute, and rights that chance according to the user).
  • RISC Processors 102 are configured to run programs that are stored in memory subsystem 104 , including bootstrap programs that may be stored in ROM and firmware.
  • computer system 100 Upon reset, computer system 100 authenticates the current firmware using cryptographic techniques (example techniques can be found, for example, in “Security Requirements for Cryptographic Modules, Implementation Guidelines,” NIST-FIPS 140-2, cited above; and in “The Keyed-Hash Message Authentication Code,” PIPS PUB 198-1, July 2008).
  • Privilege Logic Circuit 110 Before and during the authentication, Privilege Logic Circuit 110 typically limits access rights to sensitive memory areas and registers.
  • the computer system may be “in service”, for example, routing packets in a network (if computer system 100 is embedded in a network switch), routing cellphone voice/data information (if the computer system is embedded in a cellular-communication base-station), etc.
  • computer system 100 further comprises a Protected Storage Segment (PSS) 112 , which may be, for example, a RAM segment in one of Memory Subsystem 104 memory elements.
  • PSS Protected Storage Segment
  • RISC processors 102 upon boot, RISC processors 102 stores a firmware authentication code in PSS 112 , and then limit access rights to the PSS.
  • the RISC processors after storing the firmware authentication code in PSS 112 , configure Privilege Logic circuit 110 to allow PSS access only for firmware authentication.
  • an external trigger event when new firmware that has been pre-stored in the computer system is to replace the existing firmware, an external trigger event, indicating that a firmware should be switched “in-service”, may direct RISC0 to jump to a predefined address (referred to as the “singular address”); PSS 112 may detect that RISC0 jumps to the singular address and modify privilege logic 110 , allowing RISC0 to execute code in PSS 112 (and changing other access rights of RISC0); RISC0 will then execute the firmware authentication program that has been stored (following system boot) in the PSS. It should be noted that once RISC0 accesses the singular address, the privilege logic enforcements change; thus, execution of the PSS code adheres to a different set of privilege enforcements.
  • the Privilege Logic circuit allows RISC0 to read a security key of the computer system (typically stored in a ROM element of memory system 104 ) in other embodiments, the PSS will allow RISC0 to read the security key when detecting that RISC0 has accessed the predefined singular address.
  • firmware update is done “in-service”, without a need to reboot the computer system.
  • the structure of computer system 100 described above is cited by way of example. Computer systems in accordance with the disclosed techniques are not limited to the description hereinabove.
  • the privilege logic circuit is embedded in one or more of the RISC processors.
  • CRS 106 may be embedded in one or more of the RISC processors.
  • interface to external IO such as I2C, PCI, etc., is embedded in one or more of the RISC processors, and Access Control circuit 108 is replaced by an interface-enable input to the corresponding RISC processors.
  • FIG. 2 is a flowchart 200 that schematically illustrates a method for a computer system boot that enables secure in-service firmware update, in accordance with an embodiment of the present invention.
  • the flowchart may be executed by any or some of the RISC Processors 102 ( FIG. 1 ); we will refer to the processor or processors that execute the flowchart as “the processors”.
  • the flowchart starts, after Reset, with an Authenticate Signature step 202 , wherein the processors authenticate the secure boot signature, using secure boot techniques, such as those described in the NIST-FIPS 140-2 document cited above.
  • the processors check the authentication result and enter an Authentication-Failure flow if the authentication fails (Authentication-Failure flow is beyond the scope of the present invention; it may comprise, for example, alerting a user and processor-halt, or taking any other suitable alternative action).
  • step 204 the processors enter a Configure-Restricted-Accesses step 206 and configure Privilege Logic circuit 110 ( FIG. 1 ) to restrict accesses and allow only accesses that are needed during the booting process (for example, the processors may restrict IO accesses to some CSR registers and to memory subsystem 104 ).
  • the processors will then, in An Obtain Firmware-Root-of-Trust (ROT) step 208 , run additional authentication to authenticate the firmware and establish ROT (in some embodiment, this may be a two-phase process, including a critical firmware authentication followed by a non-critical firmware authentication).
  • ROT Firmware-Root-of-Trust
  • the processors will execute other startup operations, including, for example, loading of software and data to RAM and sending start-up messages to a user.
  • the processors then enter a Load-Authentication-Code step 212 and load a firmware authentication code to PSS 112 (as this is a security-critical instance, the processors may precede step 212 with further access restrictions, beyond the restrictions set in step 206 ).
  • the processors After loading the authentication code to PSS 112 , the processors, in a Configure-PSS-Lock step 214 , configure the privilege logic to lock all accesses to the guaranteeing that the security sensitive authentication code will remain intact. The processors then enter a Service-Access-Privilege-Configuration step 216 and set the privilege logic to post-boot service privileges, typically allowing IC and most memory accesses (access to PSS 112 , however, will remained locked).
  • the computer system following reset, boots a current firmware, establishes ROT, loads a firmware authentication code into the PSS and then protects the PSS against any accesses (except execution following firmware switch, which will be described below, with reference to FIG. 3 ).
  • FIG. 3 is a flowchart 300 that schematically illustrates a method for in-service firmware switch, in accordance with an embodiment of the present invention.
  • the flowchart is executed by RISC0 and by Privilege Logic circuit 110 ( FIG. 1 ).
  • the flowchart starts at a Receive-Firmware-Switch-Trigger step 302 , wherein RISC0 receives a trigger indicating in-service switching of firmware.
  • the new firmware is assumed to have been prestored in a Flash memory (of memory subsystem 104 , FIG. 1 ).
  • the trigger is a supervisory packet that the computer system receives over a network; in some embodiments the trigger may be initiated by a user (e.g., through an external interface to the computer system); in other embodiments the trigger may be initiated by a timer and in yet other embodiments the trigger may be received by any other suitable means.
  • RISC0 Responsively to receiving the trigger, RISC0, in an Access-Singular-Address step 304 , accesses a predefined address (the “singular address”).
  • the accessing of the singular address is detected by Privilege-Logic circuit 110 , which, responsively, in a Set-Firmware-Switch-Privileges step 306 , activates a predefined in-service-firmware-switch set of privileges.
  • the set of in-service-firmware-switch privileges includes access rights to the attestation device (typically a ROM or a one-time programmable device), which stores one or more security keys, and to PSS 112 ( FIG. 1 ).
  • the in-service-firmware-switch privileges typically also blocks accesses to other areas that may be sensitive.
  • RISC0 in an Authenticate-New-Firmware step 308 , runs the firmware authentication code that is stored in PSS 112 (the authentication code has been securely loaded to PSS 112 , e.g., in step 212 of flowchart 200 ). While running the authentication code, RISC0 may get the attestation keys from a ROM (the term ROM in the present context includes, for example, mask-ROM, OTP ROM, Field-Programmable ROM and other memory devices that are configured to block write operations).
  • RISC0 jumps to a Revert-to-Previous-Firmware step 312 if the authentication fails, or to a Perform-Initial-Configuration step 314 if the authentication passes. (Reverting to the previous firmware typically includes undoing step 306 but may also include other steps and any other suitable steps, including alerting a user and resetting of the computer system.)
  • RISC0 performs initial configuration of the computer system for the new firmware. This may include storing of the newly authenticated firmware caches that cannot be accessed by other entities, and/or merging the old configurations into the new configurations. Additionally, while in step 314 , RISC0 may authenticate, the current code that other processors execute (from Flash or from RAM).
  • RISC0 stops the operation of all other RISC processors (typically RISC0 will stop operations of the other RISC processors by issuing a low-priority interrupt, allowing the processors to complete any tasks that the processors may be executing, and gracefully stop execution).
  • RISC0 will transit to the new firmware, and the other RISCs will resume operation with the new firmware.
  • RISC0 will indicate to the privilege logic to set the privileges back to SERVICE privilege; and exits the flowchart.
  • an external switch-firmware trigger causes RISC0 to access the singular address; the accessing of the singular address sets the privileges so that RISC0 will be able to authenticate the new firmware by executing the secure authentication code that has been prestored (during boot) in the PSS and by accessing an attestation key. After the new firmware is authenticated (new ROT is obtained), the new firmware is activated.
  • step 308 may be executed by a RISC processor (or by a plurality of RISC processors) other than RISC0.
  • step 316 wherein RISC0 stops the execution of other processors is omitted—instead, any RISC processor that completes its current task will load the new firmware.
  • the embodiments described herein refer mainly to secure in-service switching of firmware
  • the disclosed techniques may be applicable, mutatis mutandis, to in-service authentication of the running firmware, which may be done once every predefined period (or, for better protection, randomly).
  • the different elements of computer system 100 including any or all processors 102 , Privilege Logic circuit 110 and other subunits of the computer system may be implemented using suitable hardware, such as in one or more Application-Specific Integrated Circuits (ASICs) or Field-Programmable Gate Arrays (FPGAs), using software, using hardware, or using a combination of hardware and software elements.
  • ASICs Application-Specific Integrated Circuits
  • FPGAs Field-Programmable Gate Arrays
  • any, or all RISC processors 102 comprise one or more general-purpose programmable processors, which are programmed in software to carry out the functions described herein.
  • the software may be downloaded to the processors in electronic form, over a network, for example, or it may, alternatively or additionally, be provided and/or stored on non-transitory tangible media, such as magnetic, optical, or electronic memory.

Landscapes

  • Engineering & Computer Science (AREA)
  • Software Systems (AREA)
  • Theoretical Computer Science (AREA)
  • General Engineering & Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Computer Hardware Design (AREA)
  • Stored Programmes (AREA)

Abstract

A computer system includes a volatile memory and at least one processor. The volatile memory includes a protected storage segment (PSS) configured to store firmware-authentication program code for authenticating firmware of the computer system. The at least one processor is configured to receive a trigger to switch to a given version of the firmware, to obtain, in response to the trigger, a privilege to access the PSS, to authenticate the given version of the firmware by executing the firmware-authentication program code from the PSS, to switch to the given version of the firmware upon successfully authenticating the given version, and to take an alternative action upon failing to authenticate the given version.

Description

FIELD OF THE INVENTION
The present invention relates generally to secure update of computer systems, and particularly to methods and systems for secure in-service firmware update in computer systems.
BACKGROUND
Computer systems that run service programs, such as network elements, data-center servers, mobile-telephony base-stations, payment systems, database query systems and others, are typically required to provide continuous service.
U.S. Pat. No. 10,838,711 describes a method and apparatuses for altering the configuration of a system including a processor, firmware storage and a scratchpad from a first configuration in which a first version of firmware enabling a first plurality of system operations is run by the processor, into a second configuration in which a second version of firmware enabling a second plurality of system operations is run by the processor, including re-configuring the system from the first configuration into an intermediate configuration, while the system is in the intermediate configuration, disallowing at least one of the first plurality of operations, re-configuring the system, from the intermediate configuration to the second configuration, and while the system is in the second configuration, allowing the second plurality of operations.
U.S. Patent Application Publication 2016/0266894 proposes an approach that contemplates systems and methods to support performing a live update or upgrade of a firmware of an embedded networking device to a successful completion without resetting the embedded networking device. For the live update or upgrade, a new version of the firmware is installed seamlessly on the embedded networking device to replace the current version of the firmware on one or more cores at a time. During the live firmware updating or upgrading process, various software applications running on other cores of the embedded networking device continue to perform packet processing operations without any interruption.
SUMMARY OF THE INVENTION
An embodiment of the present invention that is described herein provides a computer system including a volatile memory and at least one processor. The volatile memory includes a protected storage segment (PSS) configured to store firmware-authentication program code for authenticating firmware of the computer system. The at least one processor is configured to receive a trigger to switch to a given version of the firmware, and, in response to the trigger, to obtain a privilege to access the PSS. The at least one processor is further configured to authenticate the given version of the firmware by executing the firmware-authentication program code from the PSS, to switch to the given version of the firmware upon successfully authenticating the given version, and to take an alternative action upon failing to authenticate the given version.
In some embodiments, the computer system further includes a read-only-memory (ROM), which is configured to store one or both of (i) part of the firmware-authentication program code and (ii) data used by the firmware-authentication program code, wherein, in response to the trigger, the at least one processor is configured to obtain a privilege to access both the PSS and the ROM.
Typically, the at least one processor is configured to obtain the privilege, authenticate the given version and switch to the given version, without a reset. In an embodiment, in response to a reset, the at least one processor is configured to boot an initial version of the firmware, to authenticate the initial version of the firmware, and to load the firmware-authentication program code to the PSS.
In some embodiments, the computer system further includes a privilege control circuit that is configured to grant the privilege to access the PSS to the at least one processor, in response to detecting that the at least one processor accesses a defined address. In an embodiment, the computer system further includes input interfaces, and the at least one processor is configured to ignore inputs from the input interfaces while having the privilege to access the PSS.
In some embodiments, the volatile memory and the at least one processor are included in a network device. The network device may include one of a network adapter, a network switch, a network router and a network-enabled Graphics Process in Unit (GPU).
There is additionally provided, in accordance with an embodiment of the present invention, a method including storing firmware-authentication program code, for authenticating firmware of a computer system, in a protected storage segment (PSS) of a volatile memory. A trigger to switch to a given version of the firmware is received. In response to the trigger, a privilege to access the PSS is obtained, and the given version of the firmware is authenticated by executing the firmware-authentication program code from the PSS. A switch is made to the given version of the firmware upon successfully authenticating the given version, and an alternative action is taken upon failing to authenticate the given version.
There is additionally provided, in accordance with an embodiment of the present invention, a method for securely switching firmware versions in a computer system. The method includes storing, in a protected storage portion of a volatile memory, software program code which authenticates firmware of the computer system. A trigger to switch to a given version of the firmware is received. In response to the trigger, (i) a privilege to access the protected storage portion is obtained, (ii) the given version of the firmware is authenticated by executing the software program code stored in the protected storage portion, (iii) if the given version is authenticated successfully, a switch is made to the given version of the firmware, and (iv) if the given version is not authenticated successfully, an alternative action is taken.
The present invention will be more fully understood from the following detailed description of the embodiments thereof, taken together with the drawings in which:
BRIEF DESCRIPTION OF THE DRAWINGS
FIG. 1 is a block diagram that schematically illustrates a computer system, in accordance with an embodiment of the present invention;
FIG. 2 is a flowchart that schematically illustrates a method for a computer system boot that enables secure in-service firmware update, in accordance with an embodiment of the present invention; and
FIG. 3 a flowchart that schematically illustrates a method for in-service firmware switch, in accordance with an embodiment of the present invention.
DETAILED DESCRIPTION OF EMBODIMENTS Overview
Traditionally, activating a new firmware version in a computer system entails rebooting, including activation of authentication software to make sure that the new firmware version is trustworthy. Numerous methods have been devised to verify the reliability of the firmware and protect it against attacks. Example techniques can be found, for example, in “Security Requirements for Cryptographic Modules, implementation Guidelines,” NIST-FIPS 140-2, initially released on Mar. 28, 2003. As mentioned above, a key element of the methods is typically the rebooting of the computer system.
However, in some computer systems that are configured to provide continuous service (e.g., network switches, database query systems and many others), firmware update should be done with minimum (or no) disruption to the service, and rebooting is highly undesirable.
Updating of the firmware with minimum or no disruption to the service will be referred to as “in-service firmware update.” The updating of the firmware may comprise two parts—installing the new firmware in the computer system, and the activation of the new firmware. In terms of both security and service disruption, the critical part is typically the latter—the new firmware may be loaded in the background and typically poses no security risk until activated.
Embodiments of the present invention that are disclosed herein provide methods and systems wherein new firmware may be activated with both minimal disruption and full security verification. In some embodiments, the computer system comprises a Protected Storage Segment (PSS); a processor of the computer system loads the PSS, during boot, with trusted firmware authentication code, and locks the PSS against all accesses until released (typically for execute-only) when an external trigger event indicates that the computer system should switch the running firmware to a new version (that has been pre-loaded to the computer system memory).
In some embodiments, the external trigger causes a processor of the computer system to access a preset location in memory (referred to hereinbelow as “singular address”); the computer system comprises a privilege logic circuit, which is configured to detect accessing of the singular address by the processor, and, responsively, to immediately modify access restrictions set by the privilege logic, including allowing the processor to execute: the code stored in the PSS and to read an attestation security key from a non-volatile memory of the computer system.
Thus, upon a suitable external trigger, one of the processors of the computer system will securely authenticate the new firmware, by running the code in the PSS and by reading an attestation key, without a need to reboot the computer system. If the authentication passes, the new firmware will take over. More details be disclosed in the description of example embodiments hereinbelow.
System Description
FIG. 1 is a block diagram that schematically illustrates a computer system 100, in accordance with an embodiment of the present invention. In some embodiments system 100 comprises, or is embedded in, a network device. The network device may comprise, for example, a network adapter such as an Ethernet Network Interface Controller (NIC) or an Infiniband™ Host Channel Adapter (HCA), a network switch or router, a network-enabled Graphics Processing Unit (CPU), or any other suitable type of device capable of network communication. Alternatively, system 100 may comprise any other suitable type of computer system.
In the example of FIG. 1 , computer system 100 comprises Reduced Instruction Set (RISC) processors 102, a Memory subsystem 104, a Control Registers Space (CRS) circuit 106, an Access-Control circuit 108 and a Privilege-Logic circuit 110. According to the example embodiment illustrated in FIG. 1 . RISC Processors 102 comprise twelve RISC processors; in alternative embodiments, however, any suitable number of RISC processors may be used, including a single RISC processor. Moreover, in some embodiments other types of processors may be used, such as one or more Graphic Processor Units (GPUs), one or more Complex instruction set Computers (CISCs), and any combination of processors.
Memory Subsystem 104 comprises one or more memories of one or more memory types; the memories may include volatile memories (e.g., Static or Dynamic Random-Access Memories (SRAMs or DRAMs)), Read-Only memories (ROMs), one-time programmable memories (e.g., e-fuse memories), Electrically Erasable Read-Only Memories (EEPROM), flash memories and/or magnetic memories, for example. Some or all the memories may be shared by a plurality of processors, whereas other memories may be dedicated to specific processors of RISC Processors 102.
CRS 106 comprises configuration registers operable to set system parameters of computer system 100, and to store data generated within the computer system (e.g., by RISC processors 102). CRS 106 is coupled to RISC processors 102 (in some embodiments CRS 106 is coupled to the RISC processors via a system, or a local bus), and, through Access Control circuit 108, to external interfaces with Input-Output devices such as I2C, JTAG and others. Access Control circuit 108 is set by a Privilege Logic circuit 110 to enable or disable accesses between the external interface and one of the CRS, the RISC processors, and the memory subsystem.
Privilege Logic circuit 110 is configured to control access rights between elements of computer system 100, including granting or denying specified RISC processors access rights to individual memory elements (and to individual segments within the memory elements) and to individual CRS registers. Privilege Logic circuit 110 is further configured to allow or disallow access of specified external interfaces by specified RISC processors, and access of CSR registers and memory (or memory segments) by the external interfaces (in some embodiments, more elaborate access rights may be used, e.g., separate rights to write, read or execute, and rights that chance according to the user).
RISC Processors 102 are configured to run programs that are stored in memory subsystem 104, including bootstrap programs that may be stored in ROM and firmware.
Upon reset, computer system 100 authenticates the current firmware using cryptographic techniques (example techniques can be found, for example, in “Security Requirements for Cryptographic Modules, Implementation Guidelines,” NIST-FIPS 140-2, cited above; and in “The Keyed-Hash Message Authentication Code,” PIPS PUB 198-1, July 2008). Before and during the authentication, Privilege Logic Circuit 110 typically limits access rights to sensitive memory areas and registers. After booting and authentication, the computer system may be “in service”, for example, routing packets in a network (if computer system 100 is embedded in a network switch), routing cellphone voice/data information (if the computer system is embedded in a cellular-communication base-station), etc.
According to the example embodiment illustrated in FIG. 1 , computer system 100 further comprises a Protected Storage Segment (PSS) 112, which may be, for example, a RAM segment in one of Memory Subsystem 104 memory elements. In some embodiments, upon boot, RISC processors 102 stores a firmware authentication code in PSS 112, and then limit access rights to the PSS. In an embodiment, after storing the firmware authentication code in PSS 112, the RISC processors configure Privilege Logic circuit 110 to allow PSS access only for firmware authentication.
For example, in an embodiment, when new firmware that has been pre-stored in the computer system is to replace the existing firmware, an external trigger event, indicating that a firmware should be switched “in-service”, may direct RISC0 to jump to a predefined address (referred to as the “singular address”); PSS 112 may detect that RISC0 jumps to the singular address and modify privilege logic 110, allowing RISC0 to execute code in PSS 112 (and changing other access rights of RISC0); RISC0 will then execute the firmware authentication program that has been stored (following system boot) in the PSS. It should be noted that once RISC0 accesses the singular address, the privilege logic enforcements change; thus, execution of the PSS code adheres to a different set of privilege enforcements.
Since the PSS has been protected from any access, the authentication code is deemed intact and secure, and hence, once authenticated, the new firmware is assumed to be reliable (trustworthy), and can replace the previous firmware. In some embodiments, when RISC0 executes the authentication code that is stored in PSS 112, the Privilege Logic circuit allows RISC0 to read a security key of the computer system (typically stored in a ROM element of memory system 104) in other embodiments, the PSS will allow RISC0 to read the security key when detecting that RISC0 has accessed the predefined singular address.
Thus, according to the example embodiment illustrated in FIG. 1 , firmware update is done “in-service”, without a need to reboot the computer system.
As would be appreciated, the structure of computer system 100 described above is cited by way of example. Computer systems in accordance with the disclosed techniques are not limited to the description hereinabove. In alternative embodiments, for example, the privilege logic circuit is embedded in one or more of the RISC processors. In an embodiment, CRS 106 may be embedded in one or more of the RISC processors. In some embodiments interface to external IO, such as I2C, PCI, etc., is embedded in one or more of the RISC processors, and Access Control circuit 108 is replaced by an interface-enable input to the corresponding RISC processors.
Method Descriptions
FIG. 2 is a flowchart 200 that schematically illustrates a method for a computer system boot that enables secure in-service firmware update, in accordance with an embodiment of the present invention. The flowchart may be executed by any or some of the RISC Processors 102 (FIG. 1 ); we will refer to the processor or processors that execute the flowchart as “the processors”.
The flowchart starts, after Reset, with an Authenticate Signature step 202, wherein the processors authenticate the secure boot signature, using secure boot techniques, such as those described in the NIST-FIPS 140-2 document cited above. Next, at a Check-Authentication-OK step 202, the processors check the authentication result and enter an Authentication-Failure flow if the authentication fails (Authentication-Failure flow is beyond the scope of the present invention; it may comprise, for example, alerting a user and processor-halt, or taking any other suitable alternative action).
If, in step 204, the authentication passes, the processors enter a Configure-Restricted-Accesses step 206 and configure Privilege Logic circuit 110 (FIG. 1 ) to restrict accesses and allow only accesses that are needed during the booting process (for example, the processors may restrict IO accesses to some CSR registers and to memory subsystem 104). The processors will then, in An Obtain Firmware-Root-of-Trust (ROT) step 208, run additional authentication to authenticate the firmware and establish ROT (in some embodiment, this may be a two-phase process, including a critical firmware authentication followed by a non-critical firmware authentication).
Next, at a Further-Startup step 210, the processors will execute other startup operations, including, for example, loading of software and data to RAM and sending start-up messages to a user.
The processors then enter a Load-Authentication-Code step 212 and load a firmware authentication code to PSS 112 (as this is a security-critical instance, the processors may precede step 212 with further access restrictions, beyond the restrictions set in step 206).
After loading the authentication code to PSS 112, the processors, in a Configure-PSS-Lock step 214, configure the privilege logic to lock all accesses to the guaranteeing that the security sensitive authentication code will remain intact. The processors then enter a Service-Access-Privilege-Configuration step 216 and set the privilege logic to post-boot service privileges, typically allowing IC and most memory accesses (access to PSS 112, however, will remained locked).
Thus, according to the example embodiment illustrated in FIG. 2 , the computer system, following reset, boots a current firmware, establishes ROT, loads a firmware authentication code into the PSS and then protects the PSS against any accesses (except execution following firmware switch, which will be described below, with reference to FIG. 3 ).
As would be appreciated, the method of flowchart 200 described above is cited by way of example. Flowcharts in accordance with the disclosed techniques are not limited to the description hereinabove. In alternative embodiments, for example, the hierarchical ROT flow may not be used, and, instead, a simple signature-checking authentication may be used.
FIG. 3 is a flowchart 300 that schematically illustrates a method for in-service firmware switch, in accordance with an embodiment of the present invention. The flowchart is executed by RISC0 and by Privilege Logic circuit 110 (FIG. 1 ). The flowchart starts at a Receive-Firmware-Switch-Trigger step 302, wherein RISC0 receives a trigger indicating in-service switching of firmware. The new firmware is assumed to have been prestored in a Flash memory (of memory subsystem 104, FIG. 1 ). In an embodiment, the trigger is a supervisory packet that the computer system receives over a network; in some embodiments the trigger may be initiated by a user (e.g., through an external interface to the computer system); in other embodiments the trigger may be initiated by a timer and in yet other embodiments the trigger may be received by any other suitable means.
Responsively to receiving the trigger, RISC0, in an Access-Singular-Address step 304, accesses a predefined address (the “singular address”). The accessing of the singular address is detected by Privilege-Logic circuit 110, which, responsively, in a Set-Firmware-Switch-Privileges step 306, activates a predefined in-service-firmware-switch set of privileges. The set of in-service-firmware-switch privileges includes access rights to the attestation device (typically a ROM or a one-time programmable device), which stores one or more security keys, and to PSS 112 (FIG. 1 ). The in-service-firmware-switch privileges typically also blocks accesses to other areas that may be sensitive.
Next, RISC0, in an Authenticate-New-Firmware step 308, runs the firmware authentication code that is stored in PSS 112 (the authentication code has been securely loaded to PSS 112, e.g., in step 212 of flowchart 200). While running the authentication code, RISC0 may get the attestation keys from a ROM (the term ROM in the present context includes, for example, mask-ROM, OTP ROM, Field-Programmable ROM and other memory devices that are configured to block write operations).
In a Check-Authentication-OK step 310, RISC0 jumps to a Revert-to-Previous-Firmware step 312 if the authentication fails, or to a Perform-Initial-Configuration step 314 if the authentication passes. (Reverting to the previous firmware typically includes undoing step 306 but may also include other steps and any other suitable steps, including alerting a user and resetting of the computer system.)
In step 314, RISC0 performs initial configuration of the computer system for the new firmware. This may include storing of the newly authenticated firmware caches that cannot be accessed by other entities, and/or merging the old configurations into the new configurations. Additionally, while in step 314, RISC0 may authenticate, the current code that other processors execute (from Flash or from RAM).
Then at a Stop-Other-RISC-Processors step 316, RISC0 stops the operation of all other RISC processors (typically RISC0 will stop operations of the other RISC processors by issuing a low-priority interrupt, allowing the processors to complete any tasks that the processors may be executing, and gracefully stop execution). Next, at a Transit to New Firmware step 318, RISC0 will transit to the new firmware, and the other RISCs will resume operation with the new firmware. Lastly, in a Set-Service-Privileges step 320, RISC0 will indicate to the privilege logic to set the privileges back to SERVICE privilege; and exits the flowchart.
Thus, according to the example embodiment illustrated in FIG. 3 , an external switch-firmware trigger causes RISC0 to access the singular address; the accessing of the singular address sets the privileges so that RISC0 will be able to authenticate the new firmware by executing the secure authentication code that has been prestored (during boot) in the PSS and by accessing an attestation key. After the new firmware is authenticated (new ROT is obtained), the new firmware is activated.
As would be appreciated, the method of flowchart 300 described above is cited by way of example. Flowcharts in accordance with the disclosed techniques are not limited to the description hereinabove. In alternative embodiments, for example, the authentication code that is stored in PSS 112 invokes functions that are stored in a ROM. In embodiments, step 308 may be executed by a RISC processor (or by a plurality of RISC processors) other than RISC0. In some embodiments, step 316, wherein RISC0 stops the execution of other processors is omitted—instead, any RISC processor that completes its current task will load the new firmware.
Although the embodiments described herein refer mainly to secure in-service switching of firmware, the disclosed techniques may be applicable, mutatis mutandis, to in-service authentication of the running firmware, which may be done once every predefined period (or, for better protection, randomly).
The different elements of computer system 100, including any or all processors 102, Privilege Logic circuit 110 and other subunits of the computer system may be implemented using suitable hardware, such as in one or more Application-Specific Integrated Circuits (ASICs) or Field-Programmable Gate Arrays (FPGAs), using software, using hardware, or using a combination of hardware and software elements.
In some embodiments, any, or all RISC processors 102 comprise one or more general-purpose programmable processors, which are programmed in software to carry out the functions described herein. The software may be downloaded to the processors in electronic form, over a network, for example, or it may, alternatively or additionally, be provided and/or stored on non-transitory tangible media, such as magnetic, optical, or electronic memory.
Although the embodiments described herein mainly address in-service firmware updating and switch-over, the methods and systems described herein can also be used in other applications.
It will thus be appreciated that the embodiments described above are cited by way of example, and that the present invention is not limited to what has been particularly shown and described hereinabove. Rather, the scope of the present invention includes both combinations and sub-combinations of the various features described hereinabove, as well as variations and modifications thereof which would occur to persons skilled in the art upon reading the foregoing description and which are not disclosed in the prior art. Documents incorporated by reference in the present patent application are to be considered an integral part of the application except that to the extent any terms are defined in these incorporated documents in a manner that conflicts with the definitions made explicitly or implicitly in the present specification, only the definitions in the present specification should be considered.

Claims (20)

The invention claimed is:
1. A computer system, comprising:
a volatile memory, comprising a protected storage segment (PSS), the PSS configured to store firmware-authentication program code for authenticating firmware of the computer system; and
at least one processor, configured to:
receive a trigger to switch to a given version of the firmware;
in response to the trigger, obtain a privilege to access the PSS, and authenticate the given version of the firmware by executing the firmware-authentication program code from the PSS; and
switch to the given version of the firmware upon successfully authenticating the given version, and take an alternative action upon failing to authenticate the given version,
wherein the at least one processor authenticates the given version of the firmware by applying the firmware-authentication program code to the given version of the firmware and to an attestation key not in the PSS.
2. The computer system according to claim 1, further comprising a read-only-memory (ROM), which is configured to store one or both of (i) part of the firmware-authentication program code and (ii) data used by the firmware-authentication program code, wherein, in response to the trigger, the at least one processor is configured to obtain a privilege to access both the PSS and the ROM.
3. The computer system according to claim 1, wherein the at least one processor is configured to obtain the privilege, authenticate the given version and switch to the given version, without a reset.
4. The computer system according to claim 1, wherein, in response to a reset, the at least one processor is configured to boot an initial version of the firmware, to authenticate the initial version of the firmware, and to load the firmware-authentication program code to the PSS.
5. The computer system according to claim 1, further comprising a privilege control circuit that is configured to grant the privilege to access the PSS to the at least one processor, in response to detecting that the at least one processor accesses a defined address.
6. The computer system according to claim 1, further comprising input interfaces, wherein the at least one processor is configured to ignore inputs from the input interfaces while having the privilege to access the PSS.
7. The computer system according to claim 1, wherein the volatile memory and the at least one processor are comprised in a network device.
8. The computer system according to claim 7, wherein the network device comprises one of a network adapter, a network switch, a network router and a network-enabled Graphics Processing Unit (GPU).
9. A method, comprising:
storing firmware-authentication program code, for authenticating firmware of a computer system, in a protected storage segment (PSS) of a volatile memory;
receiving a trigger to switch to a given version of the firmware;
in response to the trigger, obtaining a privilege to access the PSS, and authenticating the given version of the firmware by executing the firmware-authentication program code from the PSS; and
switching to the given version of the firmware upon successfully authenticating the given version, and taking an alternative action upon failing to authenticate the given version,
wherein authenticating the given version of the firmware is performed by applying the firmware-authentication program code to the given version of the firmware and to an attestation key not in the PSS.
10. The method according to claim 9, further comprising storing in a read-only-memory (ROM) one or both of (i) part of the firmware-authentication program code and (ii) data used by the firmware-authentication program code, wherein obtaining the privilege comprises, in response to the trigger, obtaining a privilege to access both the PSS and the ROM.
11. The method according to claim 9, wherein obtaining the privilege, authenticating the given version and switching to the given version are performed without a reset.
12. The method according to claim 9, and comprising, in response to a reset, booting an initial version of the firmware, authenticating the initial version of the firmware, and loading the firmware-authentication program code to the PSS.
13. The method according to claim 9, further comprising granting the privilege to access the PSS to at least one processor of the computer system, in response to detecting that the at least one processor accesses a defined address.
14. The method according to claim 9, further comprising ignoring inputs from input interfaces of the computer system while having the privilege to access the PSS.
15. The method according to claim 9, wherein storing the firmware-authentication program code, receiving the trigger, obtaining the privilege, authenticating the given version and switching to the given version are performed in a network device.
16. The method according to claim 15, wherein the network device comprises one of a network adapter, a network switch, a network router and a network-enabled Graphics Processing Unit (GPU).
17. A method for securely switching firmware versions in a computer system, the method comprising:
storing, in a protected storage portion of a volatile memory, software program code which authenticates firmware of the computer system;
receiving a trigger to switch to a given version of the firmware; and
in response to the trigger:
(i) obtaining a privilege to access the protected storage portion;
(ii) authenticating the given version of the firmware by executing the software program code stored in the protected storage portion;
(iii) if the given version is authenticated successfully, switching to the given version of the firmware; and
(iv) if the given version is not authenticated successfully, taking an alternative action,
wherein authenticating the given version of the firmware is performed by applying the firmware-authentication program code to the given version of the firmware and to an attestation key not in the PSS.
18. The method according to claim 17, wherein the computer system includes, is, or is embedded in, a network device.
19. The method according to claim 18, wherein the network device comprises one of a network adapter, a network switch, a network router and a network-enabled Graphics Processing Unit (GPU).
20. The method according to claim 17, wherein securely switching the firmware versions is performed without a reset.
US17/163,599 2021-02-01 2021-02-01 Secure in-service firmware update Active 2041-04-15 US11741232B2 (en)

Priority Applications (5)

Application Number Priority Date Filing Date Title
US17/163,599 US11741232B2 (en) 2021-02-01 2021-02-01 Secure in-service firmware update
EP21836642.5A EP4285259A1 (en) 2021-02-01 2021-12-19 Secure in-service firmware update
CN202180091298.XA CN116745765A (en) 2021-02-01 2021-12-19 Secure in-service firmware update
PCT/IB2021/061995 WO2022162457A1 (en) 2021-02-01 2021-12-19 Secure in-service firmware update
US18/349,147 US20230351021A1 (en) 2021-02-01 2023-07-09 Secure In-Service Firmware Update

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
US17/163,599 US11741232B2 (en) 2021-02-01 2021-02-01 Secure in-service firmware update

Related Child Applications (1)

Application Number Title Priority Date Filing Date
US18/349,147 Continuation US20230351021A1 (en) 2021-02-01 2023-07-09 Secure In-Service Firmware Update

Publications (2)

Publication Number Publication Date
US20220245251A1 US20220245251A1 (en) 2022-08-04
US11741232B2 true US11741232B2 (en) 2023-08-29

Family

ID=79259406

Family Applications (2)

Application Number Title Priority Date Filing Date
US17/163,599 Active 2041-04-15 US11741232B2 (en) 2021-02-01 2021-02-01 Secure in-service firmware update
US18/349,147 Pending US20230351021A1 (en) 2021-02-01 2023-07-09 Secure In-Service Firmware Update

Family Applications After (1)

Application Number Title Priority Date Filing Date
US18/349,147 Pending US20230351021A1 (en) 2021-02-01 2023-07-09 Secure In-Service Firmware Update

Country Status (4)

Country Link
US (2) US11741232B2 (en)
EP (1) EP4285259A1 (en)
CN (1) CN116745765A (en)
WO (1) WO2022162457A1 (en)

Citations (59)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6070012A (en) 1998-05-22 2000-05-30 Nortel Networks Corporation Method and apparatus for upgrading software subsystems without interrupting service
US6397385B1 (en) 1999-07-16 2002-05-28 Excel Switching Corporation Method and apparatus for in service software upgrade for expandable telecommunications system
US20020092008A1 (en) 2000-11-30 2002-07-11 Ibm Corporation Method and apparatus for updating new versions of firmware in the background
US20030028800A1 (en) 2001-07-31 2003-02-06 Dayan Richard Alan Recovery of a BIOS image
US6535924B1 (en) 2001-09-05 2003-03-18 Pluris, Inc. Method and apparatus for performing a software upgrade of a router while the router is online
US20030188176A1 (en) 2002-03-26 2003-10-02 International Business Machines Corporation Remotely booting devices in a dense server environment without manually installing authentication parameters on the devices to be booted
US6640334B1 (en) 1999-09-27 2003-10-28 Nortel Networks Limited Method and apparatus of remotely updating firmware of a communication device
US20040024860A1 (en) 2000-10-26 2004-02-05 Katsuhiko Sato Communication system, terminal, reproduction program, recorded medium on which reproduction program is recorded, server device, server program, and recorded medium on which server program is recorded
US20040042547A1 (en) 2002-08-29 2004-03-04 Scott Coleman Method and apparatus for digitizing and compressing remote video signals
US20040083476A1 (en) 2002-10-29 2004-04-29 Brocade Communications Systems, Inc. Mechanism to change firmware in a high availability single processor system
US20040131115A1 (en) 2002-08-29 2004-07-08 John Burgess Method and apparatus for transmitting video signals
US20050021968A1 (en) 2003-06-25 2005-01-27 Zimmer Vincent J. Method for performing a trusted firmware/bios update
US20050114846A1 (en) 2003-11-25 2005-05-26 Cisco Technology, Inc. Configuration synchronization for redundant processors executing different versions of software
US20050114894A1 (en) 2003-11-26 2005-05-26 David Hoerl System for video digitization and image correction for use with a computer management system
US20050125519A1 (en) 2003-11-26 2005-06-09 Allen Yang Remote network management system
US20060233182A1 (en) 2005-04-14 2006-10-19 Chandrashekhar Appanna BGP hitless upgrade approaches
US20070174685A1 (en) 2006-01-19 2007-07-26 Banks Donald E Method of ensuring consistent configuration between processors running different versions of software
US20070183493A1 (en) 2005-02-04 2007-08-09 Tom Kimpe Method and device for image and video transmission over low-bandwidth and high-latency transmission channels
US20070192610A1 (en) 2006-02-10 2007-08-16 Chun Dexter T Method and apparatus for securely booting from an external storage device
US20070300207A1 (en) 2006-06-22 2007-12-27 James Ronald Booth Boot Validation System and Method
US20080126541A1 (en) 2006-02-07 2008-05-29 Cisco Technology, Inc. System and Method for Providing Multimedia Services
US20080165952A1 (en) 2007-01-07 2008-07-10 Michael Smith Secure Booting A Computing Device
US20080195693A1 (en) 2005-10-25 2008-08-14 Huawei Technologies Co., Ltd. Method and Device for Monitoring and Upgrading Software in Device Management
US20090063108A1 (en) 2007-08-31 2009-03-05 Dallas Blake De Atley Compatible trust in a computing device
US20090089774A1 (en) 2007-09-27 2009-04-02 Lynch Timothy J In-service software upgrade utilizing metadata-driven state translation
US20090199049A1 (en) 2008-02-01 2009-08-06 Fujitsu Limited Program processing device and program processing method
US20100199272A1 (en) 2009-02-05 2010-08-05 International Business Machines Corporation Updating firmware without disrupting service
US20120072893A1 (en) 2010-09-22 2012-03-22 Rajeev Gupta In-Service Software Upgrade of Control and Line Cards of Network Element
US8190720B1 (en) 2006-06-01 2012-05-29 Cisco Technology, Inc. Performing an in-service software reload on a network device
US20120166781A1 (en) 2008-04-15 2012-06-28 De Cesare Joshua Single security model in booting a computing device
US8219794B1 (en) 2009-11-03 2012-07-10 Network Appliance, Inc. Non-disruptive firmware upgrade of a storage shelf
US20120210115A1 (en) 2011-02-11 2012-08-16 Park Dong-Jin Secure Boot Method and Method for Generating a Secure Boot Image
US20120291021A1 (en) 2011-05-13 2012-11-15 Lsi Corporation Method and system for firmware upgrade of a storage subsystem hosted in a storage virtualization environment
US20130036298A1 (en) 2007-01-07 2013-02-07 Apple Inc. Securely recovering a computing device
US20130047031A1 (en) 2011-08-16 2013-02-21 Google Inc. Secure recovery apparatus and method
US20130145359A1 (en) 2006-01-09 2013-06-06 Cisco Technology, Inc. Method and System for Minimizing Disruption During In-Service Software Upgrade
US20130155902A1 (en) 2011-12-16 2013-06-20 Cisco Technology, Inc. System and method for non-disruptive management of servers in a network environment
US20130254906A1 (en) 2012-03-22 2013-09-26 Cavium, Inc. Hardware and Software Association and Authentication
US20130262612A1 (en) 2010-08-27 2013-10-03 Fxi Technologies As Electronics device
US20140047174A1 (en) * 2012-08-09 2014-02-13 Palsamy Sakthikumar Secure data protection with improved read-only memory locking during system pre-boot
US20140189673A1 (en) 2011-06-07 2014-07-03 Lsi Corporation Management of device firmware update effects as seen by a host
US8782632B1 (en) 2012-06-18 2014-07-15 Tellabs Operations, Inc. Methods and apparatus for performing in-service software upgrade for a network device using system virtualization
US20140317350A1 (en) 2011-11-15 2014-10-23 Fxi Technologies As Portable storage devices for electronic devices
US20150058979A1 (en) 2013-08-21 2015-02-26 Nxp B.V. Processing system
US9177122B1 (en) 2013-06-26 2015-11-03 Amazon Technologies, Inc. Managing secure firmware updates
US20160266894A1 (en) 2015-03-11 2016-09-15 Cavium, Inc. Systems and methods for live upgrade and update of firmware on an embedded networking device
US20170063539A1 (en) 2009-02-06 2017-03-02 Dell Products L.P. System and method for recovery key management
US20170147356A1 (en) 2014-04-28 2017-05-25 Intel Corporation Securely booting a computing device
EP3176723A1 (en) 2015-12-04 2017-06-07 VIA Alliance Semiconductor Co., Ltd. Computer system and operating method therefor
US20170168803A1 (en) 2015-12-14 2017-06-15 Telefonaktiebolaget Lm Ericsson (Publ) Method and apparatus for performing hitless update of line cards of a network device
US9870219B1 (en) 2016-07-06 2018-01-16 Cisco Technology, Inc. Mechanisms for performing switch upgrades using remote containers
US20180067800A1 (en) 2016-09-07 2018-03-08 Sandisk Technologies Llc System and method for protecting firmware integrity in a multi-processor non-volatile memory system
US10452386B1 (en) 2018-07-19 2019-10-22 American Megatrends International, Llc Non-destructive update of discrete components of firmware
US20200026427A1 (en) 2018-07-23 2020-01-23 Reduxio Systems Ltd. System and method for handling data storage on storage devices
US10824501B2 (en) 2019-01-07 2020-11-03 Mellanox Technologies, Ltd. Computer code integrity checking
US10838711B2 (en) 2018-09-20 2020-11-17 Mellanox Technologies Tlv Ltd. In-service software/firmware update
US10984107B2 (en) 2018-04-24 2021-04-20 Mellanox Technologies, Ltd. Secure boot
US20210240489A1 (en) * 2020-02-04 2021-08-05 Microsoft Technology Licensing, Llc Firmware update patch
US11321077B1 (en) * 2020-06-05 2022-05-03 Amazon Technologies, Inc. Live updating of firmware behavior

Family Cites Families (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US9069965B2 (en) * 2008-08-26 2015-06-30 Dell Products L.P. System and method for secure information handling system flash memory access
US8522322B2 (en) * 2010-09-22 2013-08-27 Intel Corporation Platform firmware armoring technology
KR20210089486A (en) * 2020-01-08 2021-07-16 삼성전자주식회사 Apparatus and method for securely managing keys
US12008359B2 (en) * 2020-02-13 2024-06-11 Intel Corporation Update of boot code handlers
US20200326925A1 (en) * 2020-06-26 2020-10-15 Intel Corporation Memory device firmware update and activation with memory access quiescence
US20220156377A1 (en) * 2020-11-19 2022-05-19 Microsoft Technology Licensing, Llc Firmware runtime patch secure release process

Patent Citations (69)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US6070012A (en) 1998-05-22 2000-05-30 Nortel Networks Corporation Method and apparatus for upgrading software subsystems without interrupting service
US6397385B1 (en) 1999-07-16 2002-05-28 Excel Switching Corporation Method and apparatus for in service software upgrade for expandable telecommunications system
US6640334B1 (en) 1999-09-27 2003-10-28 Nortel Networks Limited Method and apparatus of remotely updating firmware of a communication device
US20040024860A1 (en) 2000-10-26 2004-02-05 Katsuhiko Sato Communication system, terminal, reproduction program, recorded medium on which reproduction program is recorded, server device, server program, and recorded medium on which server program is recorded
US20020092008A1 (en) 2000-11-30 2002-07-11 Ibm Corporation Method and apparatus for updating new versions of firmware in the background
US20030028800A1 (en) 2001-07-31 2003-02-06 Dayan Richard Alan Recovery of a BIOS image
US6535924B1 (en) 2001-09-05 2003-03-18 Pluris, Inc. Method and apparatus for performing a software upgrade of a router while the router is online
US20030188176A1 (en) 2002-03-26 2003-10-02 International Business Machines Corporation Remotely booting devices in a dense server environment without manually installing authentication parameters on the devices to be booted
US20040042547A1 (en) 2002-08-29 2004-03-04 Scott Coleman Method and apparatus for digitizing and compressing remote video signals
US20040131115A1 (en) 2002-08-29 2004-07-08 John Burgess Method and apparatus for transmitting video signals
US20040083476A1 (en) 2002-10-29 2004-04-29 Brocade Communications Systems, Inc. Mechanism to change firmware in a high availability single processor system
US20050021968A1 (en) 2003-06-25 2005-01-27 Zimmer Vincent J. Method for performing a trusted firmware/bios update
US20050114846A1 (en) 2003-11-25 2005-05-26 Cisco Technology, Inc. Configuration synchronization for redundant processors executing different versions of software
US20050114894A1 (en) 2003-11-26 2005-05-26 David Hoerl System for video digitization and image correction for use with a computer management system
US20050125519A1 (en) 2003-11-26 2005-06-09 Allen Yang Remote network management system
US20070183493A1 (en) 2005-02-04 2007-08-09 Tom Kimpe Method and device for image and video transmission over low-bandwidth and high-latency transmission channels
US20060233182A1 (en) 2005-04-14 2006-10-19 Chandrashekhar Appanna BGP hitless upgrade approaches
US7609617B2 (en) 2005-04-14 2009-10-27 Cisco Technology, Inc. BGP hitless upgrade approaches
US8346913B2 (en) 2005-10-25 2013-01-01 Huawei Technologies Co., Ltd. Method and device for monitoring and upgrading software in device management
US20080195693A1 (en) 2005-10-25 2008-08-14 Huawei Technologies Co., Ltd. Method and Device for Monitoring and Upgrading Software in Device Management
US9182972B2 (en) 2006-01-09 2015-11-10 Cisco Technology, Inc. Method and system for minimizing disruption during in-service software upgrade
US20130145359A1 (en) 2006-01-09 2013-06-06 Cisco Technology, Inc. Method and System for Minimizing Disruption During In-Service Software Upgrade
US20070174685A1 (en) 2006-01-19 2007-07-26 Banks Donald E Method of ensuring consistent configuration between processors running different versions of software
US7661025B2 (en) 2006-01-19 2010-02-09 Cisco Technoloy, Inc. Method of ensuring consistent configuration between processors running different versions of software
US20080126541A1 (en) 2006-02-07 2008-05-29 Cisco Technology, Inc. System and Method for Providing Multimedia Services
US8194642B2 (en) 2006-02-07 2012-06-05 Cisco Technology, Inc. System and method for providing multimedia services
US20070192610A1 (en) 2006-02-10 2007-08-16 Chun Dexter T Method and apparatus for securely booting from an external storage device
US8190720B1 (en) 2006-06-01 2012-05-29 Cisco Technology, Inc. Performing an in-service software reload on a network device
US20070300207A1 (en) 2006-06-22 2007-12-27 James Ronald Booth Boot Validation System and Method
US20080165952A1 (en) 2007-01-07 2008-07-10 Michael Smith Secure Booting A Computing Device
US20170346631A1 (en) 2007-01-07 2017-11-30 Apple Inc. Securely recovering a computing device
US20130024677A1 (en) 2007-01-07 2013-01-24 Michael Smith Secure booting a computing device
US20130036298A1 (en) 2007-01-07 2013-02-07 Apple Inc. Securely recovering a computing device
US20090063108A1 (en) 2007-08-31 2009-03-05 Dallas Blake De Atley Compatible trust in a computing device
US20090089774A1 (en) 2007-09-27 2009-04-02 Lynch Timothy J In-service software upgrade utilizing metadata-driven state translation
US20090199049A1 (en) 2008-02-01 2009-08-06 Fujitsu Limited Program processing device and program processing method
US20120166781A1 (en) 2008-04-15 2012-06-28 De Cesare Joshua Single security model in booting a computing device
US20100199272A1 (en) 2009-02-05 2010-08-05 International Business Machines Corporation Updating firmware without disrupting service
US20170063539A1 (en) 2009-02-06 2017-03-02 Dell Products L.P. System and method for recovery key management
US8219794B1 (en) 2009-11-03 2012-07-10 Network Appliance, Inc. Non-disruptive firmware upgrade of a storage shelf
US20130262612A1 (en) 2010-08-27 2013-10-03 Fxi Technologies As Electronics device
US8402453B2 (en) 2010-09-22 2013-03-19 Telefonaktiebolaget L M Ericsson (Publ) In-service software upgrade of control and line cards of network element
US20120072893A1 (en) 2010-09-22 2012-03-22 Rajeev Gupta In-Service Software Upgrade of Control and Line Cards of Network Element
US20120210115A1 (en) 2011-02-11 2012-08-16 Park Dong-Jin Secure Boot Method and Method for Generating a Secure Boot Image
US8745614B2 (en) 2011-05-13 2014-06-03 Lsi Corporation Method and system for firmware upgrade of a storage subsystem hosted in a storage virtualization environment
US20120291021A1 (en) 2011-05-13 2012-11-15 Lsi Corporation Method and system for firmware upgrade of a storage subsystem hosted in a storage virtualization environment
US20140189673A1 (en) 2011-06-07 2014-07-03 Lsi Corporation Management of device firmware update effects as seen by a host
US20130047031A1 (en) 2011-08-16 2013-02-21 Google Inc. Secure recovery apparatus and method
US20140317350A1 (en) 2011-11-15 2014-10-23 Fxi Technologies As Portable storage devices for electronic devices
US9088584B2 (en) 2011-12-16 2015-07-21 Cisco Technology, Inc. System and method for non-disruptive management of servers in a network environment
US20130155902A1 (en) 2011-12-16 2013-06-20 Cisco Technology, Inc. System and method for non-disruptive management of servers in a network environment
US20130254906A1 (en) 2012-03-22 2013-09-26 Cavium, Inc. Hardware and Software Association and Authentication
US8782632B1 (en) 2012-06-18 2014-07-15 Tellabs Operations, Inc. Methods and apparatus for performing in-service software upgrade for a network device using system virtualization
US20140047174A1 (en) * 2012-08-09 2014-02-13 Palsamy Sakthikumar Secure data protection with improved read-only memory locking during system pre-boot
US9177122B1 (en) 2013-06-26 2015-11-03 Amazon Technologies, Inc. Managing secure firmware updates
US20150058979A1 (en) 2013-08-21 2015-02-26 Nxp B.V. Processing system
US20170147356A1 (en) 2014-04-28 2017-05-25 Intel Corporation Securely booting a computing device
US20160266894A1 (en) 2015-03-11 2016-09-15 Cavium, Inc. Systems and methods for live upgrade and update of firmware on an embedded networking device
EP3176723A1 (en) 2015-12-04 2017-06-07 VIA Alliance Semiconductor Co., Ltd. Computer system and operating method therefor
US20170168803A1 (en) 2015-12-14 2017-06-15 Telefonaktiebolaget Lm Ericsson (Publ) Method and apparatus for performing hitless update of line cards of a network device
US9870219B1 (en) 2016-07-06 2018-01-16 Cisco Technology, Inc. Mechanisms for performing switch upgrades using remote containers
US20180067800A1 (en) 2016-09-07 2018-03-08 Sandisk Technologies Llc System and method for protecting firmware integrity in a multi-processor non-volatile memory system
US10984107B2 (en) 2018-04-24 2021-04-20 Mellanox Technologies, Ltd. Secure boot
US10452386B1 (en) 2018-07-19 2019-10-22 American Megatrends International, Llc Non-destructive update of discrete components of firmware
US20200026427A1 (en) 2018-07-23 2020-01-23 Reduxio Systems Ltd. System and method for handling data storage on storage devices
US10838711B2 (en) 2018-09-20 2020-11-17 Mellanox Technologies Tlv Ltd. In-service software/firmware update
US10824501B2 (en) 2019-01-07 2020-11-03 Mellanox Technologies, Ltd. Computer code integrity checking
US20210240489A1 (en) * 2020-02-04 2021-08-05 Microsoft Technology Licensing, Llc Firmware update patch
US11321077B1 (en) * 2020-06-05 2022-05-03 Amazon Technologies, Inc. Live updating of firmware behavior

Non-Patent Citations (12)

* Cited by examiner, † Cited by third party
Title
Anonimous Authors, "Method of Verifying Dynamic Firmware Update Prior to Promotion," IP.com Electronic Publication, pp. 1-5, Sep. 10, 2013.
Brocade, "Network OS 7.0.1 for Brocade VDX", Release Notes v4.0, pp. 1-199, Aug. 24, 2016.
FIPS PUB 140-2—"Security Requirements for Cryptographic Modules", pp. 1-69, May 25, 2001.
FIPS PUB 180-4—"Secure Hash Standard (SHS)", pp. 1-36, Aug. 2015.
FIPS PUB 198-1—"The Keyed-Hash Message Authentication Code (HMAC)", pp. 1-13, Jul. 2008.
Implementation Guidance for FIPS 140-2 and the Cryptographic Module Validation Program, National Institute of Standards and Technology Communications Security Establishment, pp. 1-237, Mar. 28, 2003.
International Application # PCT/IB2021/061995 Search Report dated Apr. 4, 2022.
PCI Express® Base Specification, Revision 4.0, Version 0.3 , pp. 1-1053, Feb. 19, 2014.
PKCS#1—Cryptography Standard, Version 2.2, published by RSA Laboratories , pp. 1-63, Oct. 27, 2012.
Tremaine et al., "Pinnacle: IBM MXT in a memory controller chip," IEEE Micro, vol. 21, No. 2, pp. 56-68, Mar.-Apr. 2001.
Unified Extensible Firmware Interface (UEFI) Specification , Version 2.7—Errata A, Chapter 31, pp. 1765-1798, Aug. 2017.
Wikipedia, "Firmware", pp. 1-6, Jul. 23, 2019.

Also Published As

Publication number Publication date
CN116745765A (en) 2023-09-12
WO2022162457A1 (en) 2022-08-04
US20230351021A1 (en) 2023-11-02
US20220245251A1 (en) 2022-08-04
EP4285259A1 (en) 2023-12-06

Similar Documents

Publication Publication Date Title
CN107292176B (en) Method and system for accessing a trusted platform module of a computing device
US9372699B2 (en) System and method for processing requests to alter system security databases and firmware stores in a unified extensible firmware interface-compliant computing device
US10073966B2 (en) Operating system-independent integrity verification
EP2729896B1 (en) Bios flash attack protection and notification
EP2668566B1 (en) Authenticate a hypervisor with encoded information
US8566815B2 (en) Mechanism for updating software
US20130254906A1 (en) Hardware and Software Association and Authentication
US10592661B2 (en) Package processing
US10936722B2 (en) Binding of TPM and root device
US9830457B2 (en) Unified extensible firmware interface (UEFI) credential-based access of hardware resources
US11102002B2 (en) Trust domain isolation management in secured execution environments
US11436324B2 (en) Monitoring parameters of controllers for unauthorized modification
US10742412B2 (en) Separate cryptographic keys for multiple modes
US20210397700A1 (en) Method and apparatus for isolating sensitive untrusted program code on mobile device
CN112069506B (en) Safe starting method and device
US11188321B2 (en) Processing device and software execution control method
US20190332392A1 (en) Information Handling Systems And Related Methods For Establishing Trust Between Boot Firmware And Applications Based On User Physical Presence Verification
US10019577B2 (en) Hardware hardened advanced threat protection
EP3176723B1 (en) Computer system and operating method therefor
US11741232B2 (en) Secure in-service firmware update
US20230078058A1 (en) Computing systems employing a secure boot processing system that disallows inbound access when performing immutable boot-up tasks for enhanced security, and related methods
US20230229774A1 (en) Bios action request for authorized application
US20220121748A1 (en) Modifications to firmware functionality
CN116055124A (en) White list updating method and device, electronic equipment and storage medium

Legal Events

Date Code Title Description
AS Assignment

Owner name: MELLANOX TECHNOLOGIES, LTD., ISRAEL

Free format text: ASSIGNMENT OF ASSIGNORS INTEREST;ASSIGNORS:SFADIA, MOR HOYDA;ITKIN, YUVAL;ATAMLI, AHMAD;AND OTHERS;SIGNING DATES FROM 20210105 TO 20210107;REEL/FRAME:055090/0241

FEPP Fee payment procedure

Free format text: ENTITY STATUS SET TO UNDISCOUNTED (ORIGINAL EVENT CODE: BIG.); ENTITY STATUS OF PATENT OWNER: LARGE ENTITY

STPP Information on status: patent application and granting procedure in general

Free format text: RESPONSE TO NON-FINAL OFFICE ACTION ENTERED AND FORWARDED TO EXAMINER

STPP Information on status: patent application and granting procedure in general

Free format text: FINAL REJECTION MAILED

STPP Information on status: patent application and granting procedure in general

Free format text: NOTICE OF ALLOWANCE MAILED -- APPLICATION RECEIVED IN OFFICE OF PUBLICATIONS

STCF Information on status: patent grant

Free format text: PATENTED CASE